$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ER6ZbzB7wKI2Lu1wVWQcSoDz--0.roa File: ER6ZbzB7wKI2Lu1wVWQcSoDz--0.roa (raw, json) Hash identifier: xMLmxtzS7co9nimpsVCi78bZrikjnjuO3QOnmcDndrs= Subject key identifier: 11:1E:99:6F:30:7B:C0:A2:36:2E:ED:70:55:64:1C:4A:80:F3:FB:ED Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 590E Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ER6ZbzB7wKI2Lu1wVWQcSoDz--0.roa Signing time: Mon 26 Aug 2024 05:23:26 +0000 ROA not before: Mon 26 Aug 2024 05:23:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 43.227.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22798 (0x590e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 26 05:23:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=111E996F307BC0A2362EED7055641C4A80F3FBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:8d:34:48:91:33:a3:df:6f:72:4a:33:01:e9: 83:f0:3a:49:d3:23:9f:0f:21:a5:c1:26:6d:0a:dc: 10:03:45:c2:a7:2b:c2:fd:e5:09:87:30:e4:eb:50: c9:b6:a2:09:31:fa:5f:4e:42:8f:aa:15:0c:86:51: fd:b5:12:ed:92:db:17:bc:d3:d2:2c:18:0e:87:c1: ec:c3:1f:eb:88:a4:26:de:dc:c7:0a:da:29:ec:1b: 6c:f5:73:ea:ed:d0:f6:9e:5d:34:cb:4b:e7:aa:dc: 1f:14:7f:74:73:4d:3b:b8:5b:a9:82:75:44:3a:eb: 10:47:18:38:3f:b2:73:e0:39:5c:e1:6b:65:94:53: 0a:89:55:b4:9d:9c:21:8e:6d:78:23:a1:d4:72:5d: 01:38:12:5e:33:fb:34:45:c1:01:58:46:d3:58:cf: ec:2a:bc:62:47:22:39:2d:65:a0:bd:3a:60:55:17: 6b:11:ed:b3:ac:14:19:a0:3a:2b:36:23:fb:e6:02: f7:4d:09:88:ba:ad:af:05:05:13:a1:a6:1d:df:23: e4:e3:03:b3:f5:e2:c9:ae:81:b7:42:ec:ad:08:e7: 7c:94:d8:7e:f7:a6:41:ed:b3:6e:3d:b0:c7:37:b4: d1:41:9b:58:93:c4:40:ea:3f:54:41:35:67:b0:2c: e3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1E:99:6F:30:7B:C0:A2:36:2E:ED:70:55:64:1C:4A:80:F3:FB:ED X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ER6ZbzB7wKI2Lu1wVWQcSoDz--0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.26.0/23 Signature Algorithm: sha256WithRSAEncryption 69:92:56:3f:b8:a2:45:69:2f:a8:97:5a:14:39:f5:60:31:24: a9:f6:d2:d5:42:20:0b:58:d7:a8:36:a7:a8:e3:41:66:6a:1d: 26:24:18:03:f2:b9:75:0b:26:cc:33:f9:e3:d7:32:95:8e:98: b9:23:c9:82:4d:e9:f6:7f:31:28:ed:73:ed:5b:8c:1a:07:c8: c3:d9:c0:ca:dc:6a:e1:2b:d8:55:41:c5:61:e2:e2:8c:64:f8: 0e:63:2b:d1:f0:15:e7:27:b5:b6:9f:eb:5b:60:0f:d9:5e:83: 8b:ef:3b:1b:fa:74:4f:15:c5:aa:1b:1c:80:3d:e1:3d:a0:27: a0:5d:69:47:26:4d:a0:b5:44:32:c1:5f:be:f1:f8:65:14:ef: ce:bb:18:3f:d2:3f:4b:58:81:31:a0:4f:18:88:d0:01:aa:9c: 46:a4:9e:ed:93:d2:06:5e:a6:27:95:20:c9:ec:4b:37:62:6c: 3d:a1:5d:35:99:d3:63:92:c3:6b:d9:6d:68:9f:7d:64:fd:27: d5:f5:c5:aa:65:ea:a7:06:ea:7a:17:7d:8f:0b:29:f5:9e:23: 97:c4:3f:e9:fe:17:02:e0:ec:3a:6d:f8:82:48:c1:46:b3:f3: 38:5c:bd:e1:d0:72:42:a9:03:67:b3:a8:12:0c:27:b5:d6:f2: 28:de:60:bb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNDA4MjYw NTIzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExMUU5OTZGMzA3QkMw QTIzNjJFRUQ3MDU1NjQxQzRBODBGM0ZCRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzjTRIkTOj329ySjMB6YPwOknTI58PIaXBJm0K3BADRcKnK8L9 5QmHMOTrUMm2ogkx+l9OQo+qFQyGUf21Eu2S2xe809IsGA6HwezDH+uIpCbe3McK 2insG2z1c+rt0PaeXTTLS+eq3B8Uf3RzTTu4W6mCdUQ66xBHGDg/snPgOVzha2WU UwqJVbSdnCGObXgjodRyXQE4El4z+zRFwQFYRtNYz+wqvGJHIjktZaC9OmBVF2sR 7bOsFBmgOis2I/vmAvdNCYi6ra8FBROhph3fI+TjA7P14smugbdC7K0I53yU2H73 pkHts249sMc3tNFBm1iTxEDqP1RBNWewLOOfAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUER6ZbzB7wKI2Lu1wVWQcSoDz++0wHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvRVI2WmJ6Qjd3S0kyTHUx d1ZXUWNTb0R6LS0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ASvjGjANBgkqhkiG9w0BAQsFAAOCAQEAaZJWP7iiRWkvqJdaFDn1YDEkqfbS1UIg C1jXqDanqONBZmodJiQYA/K5dQsmzDP549cylY6YuSPJgk3p9n8xKO1z7VuMGgfI w9nAytxq4SvYVUHFYeLijGT4DmMr0fAV5ye1tp/rW2AP2V6Di+87G/p0TxXFqhsc gD3hPaAnoF1pRyZNoLVEMsFfvvH4ZRTvzrsYP9I/S1iBMaBPGIjQAaqcRqSe7ZPS Bl6mJ5UgyexLN2JsPaFdNZnTY5LDa9ltaJ99ZP0n1fXFqmXqpwbqehd9jwsp9Z4j l8Q/6f4XAuDsOm34gkjBRrPzOFy94dByQqkDZ7OoEgwntdbyKN5guw== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:12 2024 by rpki-client on console-fra.rpki-client.org